What’s going on under the hood of the Judy apps we wrote about last month? We had a look – and didn’t like what we found

Researchers have discovered a shared backend infrastructure between the Jaff ransomware and a black market carder shop.

A massive malware campaign has already infected 250 million Windows and Mac OS computers worldwide.

Pandemic is a Windows implant built by the CIA that turns file servers into Patient Zero on a local network, infecting machines requesting files with Trojanized replacements.

Mike Mimoso and Chris Brook discuss the news of the week, including the ShadowBrokers crowdfunding attempt, errors in WannaCry, a new Wikileaks dump, last week’s Samba vulnerability, and the OneLogin breach.

FireEye said threat actors are using the NSA’s EternalBlue exploit of the same Microsoft SMBv1 vulnerability as WannaCry to spread Nitol and Gh0st RAT.

Researchers at Kaspersky Lab have found a number of programming errors in the WannaCry ransomware code that put file recovery within reach of sysadmins.

‘Legal reasons’ cited for decision to drop the plan to crowdfund a security community subscription to a promised monthly dump of exploits

SophosLabs gets under the skin of the bad guys’ latest attempt to drop ransomware on to your PCs

The ShadowBrokers announced details on how to subscribe to its Monthly Dump Service, which is available for 100 Zcash.